Overview

overview

10

Static

static

8

URLScan

urlscan

10

https://bviuwerh0gfv...

windows7_x64

6

https://bviuwerh0gfv...

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://bviuwerh0gfv9w30e-r4ghy-we398igrhv-w3ep9gh-4pg9.obs.ap-southeast-2.myhuaweicloud.com/bfvkiuerthg0o98ir5g-h93ewrihgv-ep9rhg-p9rgv.html?AWSAccessKeyId=BIYYVE07OMDKEILTTF0R&Expires=1651778709&Signature=Awe66Kexe2ZePCDdvhG48NMVBPU%3D#user@fake.com

  • Sample

    220407-frwshabgg8

Score
10/10
genericemaildiscoveryphishing

Malware Config

Targets

    • Target

      https://bviuwerh0gfv9w30e-r4ghy-we398igrhv-w3ep9gh-4pg9.obs.ap-southeast-2.myhuaweicloud.com/bfvkiuerthg0o98ir5g-h93ewrihgv-ep9rhg-p9rgv.html?AWSAccessKeyId=BIYYVE07OMDKEILTTF0R&Expires=1651778709&Signature=Awe66Kexe2ZePCDdvhG48NMVBPU%3D#user@fake.com

    Score
    6/10
    discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

1
T1046

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks